Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-38283

Published: 29/08/2023 Updated: 07/09/2023
CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Openbgpd

Vulnerability Summary

In OpenBGPD prior to 8.1, incorrect handling of BGP update data (length of path attributes) set by a potentially distant remote actor may cause the system to incorrectly reset a session. This is fixed in OpenBSD 7.3 errata 006.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

openbgpd openbgpd

Vendor Advisories

Palo Alto Networks Security Advisory: CVE-2023-38802 PAN-OS: Denial-of-Service (DoS) Vulnerability in BGP Software
CVE-2023-38802 PAN-OS: Denial-of-Service (DoS) Vulnerability in BGP Software ...

References

CWE-754https://news.ycombinator.com/item?id=37305800https://ftp.openbsd.org/pub/OpenBSD/patches/7.3/common/006_bgpd.patch.sighttps://www.openbsd.org/errata73.htmlhttps://blog.benjojo.co.uk/post/bgp-path-attributes-grave-error-handlinghttps://github.com/openbgpd-portable/openbgpd-portable/releases/tag/8.1https://nvd.nist.govhttps://security.paloaltonetworks.com/CVE-2023-38802
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2024-34490SQL injectionCVE-2024-34488CVE-2024-4507CVE-2023-7028CVE-2024-23187TCPCVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook